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I . Amendments to the C laims 

Please amend the claims as follows with the following 
clean versions of the claims in accordance with 37 CFR § 
1.121; marked-up versions of the claims are presented in the 
5 following section. 

Clean version of amen ded claims: 
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1. A method of enabling a client terminal user to access 
target resources managed by a set of resource managers within 
an enterprise computing environment, comprising: 

authenticating the user to establish a user primary 

5 identity; 

mapping the user primary identity to a set of user 

secondary identities ; 

authenticating the user to the resource managers using 
the set of user secondary identities; 
10 following authentication using the set of user secondary 

identities, forwarding resource requests to the resource 
managers ; and 

returning replies received from the resource managers 
back to the user. 



15 



20 



25 



30 



2. The method as described in claim 1 wherein the user 
primary identity is mapped to the set of user secondary 
identities by a sign-on service. 

3. The method as described in claim 2 further including the 
step of authenticating a trusted server to the sign-on service 
prior to mapping the user primary identity to the set of user 
secondary identities. 

4. The method as described in claim 3 wherein the trusted 
server is authenticated to the sign- on server before the step 
of authenticating the user to establish the user primary 
identity. 

5. The method as described in claim 3 wherein the trusted 
server is authenticated to the sign-on service after the step 
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of authenticating the user to establish the user primary 
identity . 

6. The method as described in claim 3 wherein the user is 

5 authenticated to establish the user primary identity using an 
authentication service associated with the trusted server. 

7. The method as described in claim 1 further including the 
step of load balancing resource requests across a set of 

10 instances of a given resource manager. 

8. The method as described in claim 1 wherein the client 
terminal user accesses the enterprise computing environment 
over the Internet . 

15 

9. The method as described in claim 1 wherein the user is 
authenticated to a given resource manager using an 
authentication service associated with the given resource 
manager . 

20 
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10. (Amended) A method for enabling a client terminal 

user to access target resources managed by a set of resource 
managers operative within an enterprise computing environment, 
wherein the environment has an associated sign-on service, 
5 comprising: 

responsive to a request received from a user of the 
client terminal, authenticating the user to establish a user 
primary identity; 

using the user primary identity, accessing the sign-on 
10 service to retrieve a set of stored user authentication 
information, wherein the stored user authentication 
information comprises a set of user secondary identities; 

performing a sign-on to the set of resource managers 
using the retrieved set of user secondary identities; and 
15 forwarding the request to a given resource manager; and 
forwarding a reply received from the given resource 
manager back to the user. 
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11. A method for enabling a client terminal user to access 
target resources managed by a set of resource managers 
operative within an enterprise computing environment, wherein 
the environment has an associated sign-on service, comprising: 
5 having the client terminal user perform a primary logon 

to an intermediary server to establish a user primary 
identity; 

having the intermediary server pass the user's primary 
identity to the sign-on service and, in response, obtaining a 
10 set of user secondary identities that may be used in enabling 
the intermediary server to represent the client terminal user 
to the resource managers; 

having the intermediary server perform a secondary logon 
to a first resource manager using a first user secondary 
15 identity; 

having the intermediary server perform a secondary logon 
to a second resource manager using a second user secondary 
identity ; 

having the intermediary server perform resource requests 
20 at the first and second resource managers under the respective 
secondary identities; and 

forwarding responses back to the client terminal user. 
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12. (Amended) An enterprise computing environment having 

a set of resource managers and a sign-on service, the 
enterprise computing environment comprising: 

means for authenticating a user to establish a user 
5 primary account associated with a user primary identity; 

means for cooperating with the sign-on service to map the 
user primary account to a set of user secondary accounts 
associated with a set of user secondary identities ; 

means for logging onto the set of resource managers using 
10 the user secondary accounts; and 

means for passing resource requests from the user to the 
resource managers under the user secondary accounts. 

13. (Amended) The enterprise computing environment as 

15 described in claim 12 wherein the server passes replies to the 
resource requests back to the user. 
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14. (Amended) A server for use in an enterprise computing 

environment having a set of resource managers and a sign-on 
service, comprising : 

means for authenticating a user to establish a user 
5 primary account associated with a user primary identity; 

means for authenticating the server to the sign-on 
service ; 

means for logging onto the set of resource managers using 
a set of user secondary accounts returned from the sign-on 
10 service, wherein the set of user secondary accounts is 
associated with a set of user secondary identities; and 

means for passing resource requests and associated 
replies between the user and the resource managers. 

15 15. The server as described in claim 14 further including 

means for load balancing resource requests passed to a set of 
instances of a given resource manager. 
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16. (Amended) A system, comprising: 

a set of resource managers ; 
a sign on service; 
a server, comprising: 
5 means for authenticating users to establish user primary 

accounts associated with user primary identities, - 

means for logging a given user onto the set of resource 
managers using a set of user secondary accounts for the given 
user retrieved from the sign on service, wherein a set of user 
10 secondary accounts for a given user is associated with a set 
of user secondary identities for a given user; and 

means for passing resource requests and associated 
replies between the given user and the resource managers. 



15 17. The system as described in claim 16 wherein at least one 
resource manager comprises a set of instances. 



20 



18. The system as described in claim 17 wherein the server 
further includes means for load balancing resource requests 
across the set of instances. 



19. The system as described in claim 
comprises a set of instances. 



16 wherein the server 



25 



20. The system as described in claim 19 further including a 
manager that manages the set of server instances. 
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21. (Amended) A computer program product in a 

computer-useable medium executable in a processor of a server, 
comprising : 

means for authenticating a user to establish a user 
( y 5 primary account associated with a user primary identity; 

means for authenticating the server to a sign-on service; 
means for logging onto a set of resource managers using a 
set of user secondary accounts returned from the sign-on 
service, wherein the set of user secondary accounts are 
10 associated with a set of user secondary identities; and 
means for passing resource requests and associated 
replies between the user and the resource managers. 
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